CVE-2025-66802 | THREATINT

Description

Sourcecodester Covid-19 Contact Tracing System 1.0 is vulnerable to RCE (Remote Code Execution). The application receives a reverse shell (php) into imagem of the user enabling RCE.

PUBLISHED Reserved 2025-12-08 | Published 2026-01-12 | Updated 2026-01-12 | Assigner mitre

References

feedly.com/cve/CVE-2022-2746

github.com/mtgsjr/CVE-2025-66802

cve.org (CVE-2025-66802)

nvd.nist.gov (CVE-2025-66802)

Download JSON